| Key | Value |
|---|---|
| FileName | ./usr/lib/python3.8/site-packages/pypykatz/lsadecryptor/packages/dpapi/__pycache__/templates.cpython-38.pyc |
| FileSize | 2794 |
| MD5 | B446E65A44DD36C6009741BA60C90E21 |
| SHA-1 | 01804056605197E2D4986DC376FE0554BC369A02 |
| SHA-256 | CD769AD252E12270D8D2DF10682579A827747BCDB263E4145837B4EDA34CCB21 |
| SSDEEP | 48:NThJPZ8LVuogipCxWzUs+6gPySHd9MIM6lLXYtfWJ6CrzySEdiCn:NThJPWgIR8Pyo9MIMmXYteJ6yyrT |
| TLSH | T1E45182D68850E76BFE70F938D0F6420606B0627F9B0462D76B00729F6F69BC4476C66E |
| hashlookup:parent-total | 1 |
| hashlookup:trust | 55 |
The searched file hash is included in 1 parent files which include package known and seen by metalookup. A sample is included below:
| Key | Value |
|---|---|
| MD5 | 0F7269B6C34772F6A5D5DFA2D8E01643 |
| PackageArch | noarch |
| PackageDescription | Mimikatz implementation in pure Python. It's optimized for offline parsing, but has options for live credential dumping as well. |
| PackageMaintainer | Fedora Project |
| PackageName | pypykatz |
| PackageRelease | 1.fc32 |
| PackageVersion | 0.3.4 |
| SHA-1 | E8BD7F8029362B7081A38CC42C1B75E7FF58EE0E |
| SHA-256 | 272549D350CC6B7C8323830AFDA72F5A272AAFBC7872358818DBEBBC0BBC6DE5 |